Retire some CVEs

author: Salvatore Bonaccorso <carnil@debian.org> 2022-07-09 09:17:00 +0200
committer: Salvatore Bonaccorso <carnil@debian.org> 2022-07-09 09:17:00 +0200
commit: 1d7ab5b770f647285a30a7beb8b89849d90a7239 (patch)
tree: b2ecf3a6324dfefc0c411817cf3bcdfd369ca30c /retired/CVE-2022-1734
parent: 84f20296db7ee0ec1846e790ad100c292c93a1b7 (diff)
1 files changed, 17 insertions, 0 deletions
diff --git a/retired/CVE-2022-1734 b/retired/CVE-2022-1734
new file mode 100644
index 00000000..d0d7df2e
--- /dev/null
+++ b/retired/CVE-2022-1734
@@ -0,0 +1,17 @@
+Description: nfc: nfcmrvl: main: reorder destructive operations in nfcmrvl_nci_unregister_dev to avoid bugs
+References:
+ https://www.openwall.com/lists/oss-security/2022/06/05/3
+ https://bugzilla.redhat.com/show_bug.cgi?id=2086766
+Notes:
+ carnil> CONFIG_NFC_MRVL to support Marvell NFC devices is not set in
+ carnil> Debian.
+ carnil> For 5.17.y fixed as well in 5.17.7.
+Bugs:
+upstream: released (5.18-rc6) [d270453a0d9ec10bb8a802a142fb1b3601a83098]
+5.10-upstream-stable: released (5.10.115) [1961c5a688edb53fe3bc25cbda57f47adf12563c]
+4.19-upstream-stable: released (4.19.242) [b266f492b2af82269aaaab871ac3949420ae678c]
+4.9-upstream-stable: released (4.9.313) [4721695be941626e4b18b89e0641e36fc385cfd8]
+sid: released (5.17.11-1)
+5.10-bullseye-security: released (5.10.120-1)
+4.19-buster-security: released (4.19.249-1)
+4.9-stretch-security: released (4.9.320-2)
author	Salvatore Bonaccorso <carnil@debian.org>	2022-07-09 09:17:00 +0200
committer	Salvatore Bonaccorso <carnil@debian.org>	2022-07-09 09:17:00 +0200
commit	1d7ab5b770f647285a30a7beb8b89849d90a7239 (patch)
tree	b2ecf3a6324dfefc0c411817cf3bcdfd369ca30c /retired/CVE-2022-1734
parent	84f20296db7ee0ec1846e790ad100c292c93a1b7 (diff)